


\ \ 


v r 
v V 
v 

V V 

v CI 

V J 


< 

□ 




2 O Q o 
n < n 


\ 


uj±q: 
o u. a. 



CM 




□□□□ 
□□□□ 
□□□□ 




108 



1 

X 

o 



z 

UJ 
H- 
Z 

o 
o 
o 
z 
o 



o 

UJ 
-J 
UJ 



FIG. 2 



VDE CONTENT 
CREATOR 



102 



100 



H 
Z 

z 

o 
u 




VDE RIGHTS 
DISTRIBUTOR 




J 



(o6 



112 



114 



VDE CONTENT 
USER 



116 



!1 




7) 

m 
-o 
O 

70 

a 
u 
> 



m 
z 



BILLS 



118 



FINANCIAL 
CLEARINGHOUSE 
AND 

VDE ADMINISTRATOR 



FIG. 2A 



CONTENT CREATOR 
102 




UNCHANGED 

REPLACED 
CONTENT USER ft2 



FIG. 3 



REQUEST 



USAGE 
REPORT 



BILL/REPORT. 




408 




-^OVER BUDGET 



SUPPLY CONTENT TO USER 



FIG. 5A 



i 




FIG. 6 




SECURE PROCESSING ENVIRONMENT 503 



TAMPER 
RESISTANT 
BARRIER 



600 



FIG 8 ELECTRONIC APPLIANCE 600 
("VDE NODE") 



CPU 
654 



CPU 654(M) 



RAM 
656 



ROM 
658 



SPU 
500 



SPU 
500(N) 



n 



"U 



POWER 
SUPPLY _f 



659 

V 



653 



670. 



612,614 




KEYBOARD/ 
DISPLAY 



660 



BACKUP 
STORAGE 



668 



I/O 

CONTROLLER 



COMMUNICATIONS 
CONTROLLER 



666' 



n 



672 ^^^^"^ 
( NETWORK \ 



652 



SECONDARY STORAGE 



APPLICATION PROGRAMS 
608 



VDE AWARE 
608a 



NON-VDE 
AWARE 608b 



VDE OBJECTS 
300 



OTHER 
INFORMATION 
673 



SECURE 
DATABASE 
610 



RIGHTS OPERATING SYSTEM fROS") 602 



VDE 
FUNCTIONS 
604 



OTHER 
OPERATING 
SYSTEM 
FUNCTIONS 606 




z 

p 



-<0 



^2 pro 
cuio 

Ui 



< CO cr 



2~ 

a, 




1. 




CD 
u. 



o 



UJ z 

<o! 

' 2 o 

UJ Q. CO 
Q CL 
> < 



co to 

°? < 
til <j 

n 



Q£ co 
UJ <o 

co 

3 



Z 

a g 

UJIZ J 

qPd< 
>OilU 



— ar 
z 
o 

Oo 

z 



V 



s 

(O 




CM 
O 
CO 

CO 

o 

a: 




CO 



0 




2 

u. 









UJ z 




is 

DC oo 


VDE-A1 
APPLIC) 
608a 


OTHER. 

1 CALLS 


UJ <0 

CO 

=> 



> U. 



"<o" 
* o 



T W .- 

f Ob 

5 z 






I J 00(1) 



I If' 

i-OAD flODUUT 



IDO(Z) 



r '3' 11 F 

'-CAP MOW-£ 




r f/ooo) 



\t to load /iodulC 




PA7A ST£UCTUeL5 



( 



0 

m 
=c 
w 

a 

3 

Q 
M 
□ 



( 





cr c/> — 


m 


HPE 
DEVICE 
DRIVER 

738 




HPE 







Q£ CO — 




CO 


SPE 
DEVICE 
DRIVER 

736 








83 o 



2 _i 




DEVICE FIRM WIRE LOW LtiVEL 




F1ME BASE MANAGER 554 


CERV1PPS SB 2 




ENCRYTION/DECRYPTION MANAGER 55b 


INITIALIZATION 




PK 


POST 




BULK 


DOWNLOAD 

CHALLENGE/RESPONSE AND 
AUTHENTICATION 






if ev a Kin TAft MAMAftPR S58 


RECOVERY 




KEY STORAGE IN EEPROM 


EEPROM/FLASH MEMORY 
MANAGER 




KEY LOCATOR 




KEY GENERATOR 


KERNEL/DISPATCHER S52 




IMIT1AI I7ATIDN 




CONVOLUTION ALGORITHM 


TASK MANAGER 576 
(SLEEP/AWAKE/CONTEXT SWAP) 




SUMMARY SERVICES MANAvjck ooo 


INTERRUPT HANDLER 584 




EVENT SUMMARIES 


(TIMER/BlU/PUWcK r/ML/WMi i^nuwvj 
TIMER/ENCRYPTION COMPLETED) 




BUDGET SUMMARIES 


an t WAMPK PR *5B6 




DISTRIBUTER SUMMARY SERVICES 




CHANNEL SERVICES MANAGER 562 


MCMOPY MANAGER S78 




CHANNEL HEADERS 


PTTAUZA'IION (Sbl IINvs MMU 

TABLES 






ALLOCATE 




LOAD MODULE EXECUTION SERVICES 
568 - 


DELLOCATE 




AUTHENTICATION MANAGEWSECURE 
COMMUNICATION MANAGER 664 


VIRTUAL MEMORY MANAGER 680 




SWAP BLOCK PAGING 




DATABASE MANAGER 566 


EXTERNAL MODULE PAGING 




MANAGEMENT FILE SUPPORT 




TRANSACTION AND 


MEMORY COMPRESS 




SEQUENCE NUMBER SUPPORT 


RPC AND TABLES 550 




SRN/ HASH 

DTD INTERPRETER 590 


INITIALIZATION 




LIBRARY ROUTINES 574 


MESSAGING CODE /SERVICES 
MANAGER 




T?0 CALLS(STRING SEARCH ETC.) 


SEND/RECEIVE 




MISC. ITEMS THAT ARE PROBABLY 

LIBRARY KUU 1 IINto 


STATUS 




TAG"CHECKING,MUb,LHC'S | 


RPC DISPATCH (ABLE 
RPC SERVICE TABLE 




INTERNAL LM'5 S72 hOR BASIC 

METHODS 

m£Yer Load ModUlL^) 


• 
• 
• 


BILLING LOAD MODULE^ 




ai irvscr t HAH MODULPfSI 
bULA^C t LwrNw Wlwwwwfc\v/ 




AUDIT LOAD MODULE(S) 


FIG. 14A 


READ OBJECT LOAD MODULE(S) 




WRITE OBJECT LOAD MODULE(S) 




OPEN OBJECT LOAD MOuULfc(S) 




CLOSE OBJECt LOAD MODULES) 



SPU ROM/EEPROM/FLASH 532 



FIG. 14B 





• 
• 
• 






Dl IRt IP l^CV AWn DDIX/ATC 1/CV CVCTCM in 
rUoLfU r\cY ANU rKIVAl t KtT, OTO 1 Cm IU, 

AUTHENTICATION CERTIFICATE VDE SYSTEM PUBLIC 
KEY, PRIVATE DES KEY 








TOP LEVEL KEYS FOR OBJECTS 








TOP LEVEL BUDGET INFO 




CIl 




METER SUMMATION VALUES 








KEY RECORDS FOR BUDGET RECORDS, AUDIT 
RECORDS, STATIC MANAGEMENT RECORDS, UPDATED 
MANAGEMENT RECORDS, ETC. 








• 
• 




?! 




DEVICE DATA TABLE 








SITE ID 








TIME 








ALARMS 








TRANSACTION/SEQUENCE #'S 








MISCELLANEOUS 








MEMORY MAP 








MAP METERS 








LM/UDT TABLE 








TASK MANAGER 576 








CHANNEL(S) 








SUMMARY SERVICES 560 








SECURE DATABASE TAGS 








SRN ENTRIES 








HASH ENTRIES 






• 
• 
• 

NON-VOLATILE MEMORY 534b 





( 



FIG. 14C 



STACK 


• 
• 


CHANNEL SWAP BLOCK 




CHANNEL LM 


CHANNEL HEADER & D1 


CONTROL SWAP BLOCK 




CONTROL LM 


CONTROL D1 


COMMIT LM 


COMMIT D1, D2, D3 


EVENT SWAP BLOCK 




EVENT LM 


MAP TABLE (SINGLE) 01 


METER SWAP BLOCK 




METER LM 




METER UDE DELTA.DELTA' 




METER TRAIL LM 


I 


METER TRAIL UDE 
DELTADELTA" 


RlinftPT 5W4P Rl OflK 




METER LM 


METER UDE DELTA.DELTA 


METER TRAIL LM 


METER TRAIL UDE 
DELTA, DELTA' 


BILLING SWAP BLOCK 






BILLING LM 


METER UDE 


BUDGET UDE 


BILLING TABLE UDE 


BILLING TRAIL LM 


BILLING TRAIL UDE DELTA' 



SPU RAM 532 



FIG. 15A 



CHANNEL 
HEADER 
596 
598(1) 
598(2)- 

598(N) 
599- 



CDRI 
594(1)' 



CHANNEL ID 



USER ID 



OBJECT ID 



RIGHT ID/REF. 



EVENT QUEUE 



EVENT CODE 1/PTR. TO CDR(1) 



EVENT CODE 2/PTR TO CDR(2) 



EVENT CODE N/PTR TO CDR(N) 



JUMP/REFERENCE TABLE 



597(2) 

597(3) 
• 597(4) 

. 597(5) 



CHANNEL DETAIL RECORD (1 ) 



CONTROL METHOD LOAD MODULE REF. 



URT REF 



REF TO OTHER DATA STRUCTURE(S) 



CDR2 
594(2) 



CHANNEL DETAIL RECORD (2) 



LM(1) REF. 



REF. TO DATA STRUCTURE(S) 



LM(2) REF 



REF. TO DATA STRUCTURE(S) 



LM(N) REF. 



REF. TO DATA STRUCTURE(S) 



CDR (N) 
594(N) 



FIG. 15B 



OPEN CHANNELJ 

(OBJECT. USER, RIGHT) 



ALLOCATE 
"AVAILABLE" 
CHANNEL 



1125 



ACCESS 
"BLUEPRINT 



Li 27 



WRITE TO 
CHANNEL HEADER 



1129 



OBTAIN CONTROL 
METHOD 



"BIND" CONTROL 
METHOD TO 
CHANNEL 



1133 



PASS "INIT" EVENT 
TO CHANNEL 



1135 



ACCESS 
COMPONENTS 



"BIND" COMPONENTS TO 
CHANNEL BY CONSTRUCTING 
CHANNEL DETAIL RECORD(S) 
FOR EACH EVENT 
WITHIN "RIGHT" 



1139 




CD 

Ui 
CO 
< 
CO 

< 

< 

a 
m 

OC 
3 
O 
HI 

co 



co co 




NAME 
ERVICE 
ECORD 




CM 

m 


co £ 





o 
o 



CO 
Ui 

-J 

a 
o 
s 

o 
< 
o 




o 



Z 

o 

CO ^ 

CD ui 

5^ 

Hi 
CO 

O 



Ui 

-I 

03 
<< 

CM 

Hi 
CO 
CO 



Ui 
—J 
CO 

£2 

cc 

Ui 
CO 
3 



Ui 

go 

i> 

2 Ui 

a 
< 



Ui 

-j 

DQ 

o 
z 

Cl 

X 

CO 



Ui 

—J 

CO 

> 

Ui 

o 

Ui 



CO 
Ui 

a 8 

I s 

z 
>- 

Q 



CO 
Ui 

o: 

O to 

si 
r 

co 



to 

Ui 

Q 
2 
a 



.a 

s 

CM 



> 

a 



UJ 

a 

a 8 

2 cn 

< 

Z 

> 



(A 
Ui 

Q 

2 « 

S CM 

r 

CO 



Ui 
Q 

C0 



, Ui 

co O 
O K 

CO 



CD 
CM 



302 



□ 

si 

Cn 
,p 

w 
o 

5! 

o 

M 

=s 

C3 



CONTENT < 



PUBLIC HEADER 



PRIVATE HEADER 



PRIVATE BODY 
(METHODS 1000) 



PERMISSIONS RECORDS 



KEY BLOCK(S) 



DATA BLOCK 



DATA BLOCK 



DATA BLOCK 



LOGICAL OBJECT 

FIG. 17 



800 
802 
804 

-806 

808 
.810 

812a 
812b 
,812c 




PUBLIC HEADER 802 




CLEAR 


PRIVATE HEADER 
804 


COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 




PRIVATE 
HEADER 
KEY 

(1 OF MANY) 






PRIVATE BODY(OBJECT LOCAL METHODS, 
LOAD MODULES, AND UDEs) 
806 




PRIVATE BODY 
KEY (IN PERC) 








' CONTENTS 


CONTENT 812a 


DATA BLOCK 1 




KEY 1 
(IN PERC) 


■ • ■ 




■ ■ ■ 








CONTENTS 


81 2n 


DATA BLOCK n 




KEYn 
(IN PERC) 



STATIONARY OBJECT 

FIG. 18 



860 



PUBLIC HEADER 802 


PRIVATE HEADER 
804 


COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 


808^ 


" PbKC 






KEY BLOCKS 81 o| 


PRIVATE BODY(OBJECT METHODS, 
LOAD MODULES, AND UDEs) 
806 


CONTENT 812a 




DATA BLOCK 1 


a ■ • 


B12n 




DATA BLOCK n 



CLEAR 



PRIVATE 
HEADER 
KEY 

(1 OF MANY) 



PRIVATE BODY 
KEY (IN PERC) 



CONTENTS 
KEY 1 
(IN PERC) 



CONTENTS 

KEY n 
(IN PERC) 



TRAVELING OBJECT 



FIG. 19 



880 



PUBLIC HEADER 802 



PRIVATE HEADER 
804 



COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 



PRIVATE BODY(OBJECT LOCAL METHODS, 
LOAD MODULES, AND UDEs) 
806 



CONTENT 812a 



DATA BLOCK 1 



3nte7 

CONTAINER^ 

'"?n"fZ}kma riot 



300 



Permission's 




ADMINISTRATIVE 
OBJECT 

EMBEDDED 
CONTENT 
OBJECT 



812b 




812n 



DATA BLOCK n 



CLEAR 



PRIVATE 
HEADER 
KEY 

(1 OF MANY) 



PRIVATE BODY 
KEY (IN PERC) 



CONTENTS 
KEY 1 
(IN PERC) 



CONTENTS 

KEYn 
(IN PERC) 



CONTENT OBJECT 

FIG. 20 



870 



PUBLIC HEADER 802 



PRIVATE HEADER 
804 



COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 



808, 



PERC 



PRIVATE BODY(OBJECT LOCAL METHODS. 
LOAD MODULES, AND UDEs) 
806 



CONTENT 812 
872a ADMINISTRATIVE INFORMATION 



872b 

Hi 



872n 



EVENT 1 


PARAMETERS! DATA ! 

1 I 


" EVENT 2 


Y 1 

PARAMETERS! DATA ! 
'. 1 


• * • 

• • • 

• • • 


EVENT N 


PARAMETERS} DATA i 


874 ' 876 878-^ 



CLEAR 



PRIVATE 
HEADER 
KEY 

(1 OF MANY) 



PRIVATE BODY 
KEY (IN PERC) 



CONTENTS 
KEY 

(IN PERC) 



ADMINISTRATIVE OBJECT 

FIG. 21 



FIG. 22 



1000 1 



PUBLIC HEADER 802 



PRIVATE HEADER 804 



EVENT 1 
1014 



EVENT 2 



EVENT 3 



EVENT 4 



1006 



EVENT 5 



EVENT 6 



EVENT 7 



EVENT N 



1008 



COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC HEADER 



1016 



1018a 



1018b 



METHOD EVENT TABLE 



PERC/ 
LMREF. 



DATA 
REF1 



DATA 
REF2 



METHOD LOCAL DATA AREA 
(MDEs, UDEs, DTDs OR PORTIONS THEREOF, 
OR REFERENCES THERETO) 



CLEAR 
TEXT 



,1012(1) 
1012(2) 



,1012(3) 
SITE 

SPECIFIC 
METHOD 
KEY 

-1012(4) 



1012(5) 
,1 012(6) 

.1012(7) 



,1012(N) 



SITE 

SPECIFIC 
METHOD 
KEY 



METHOD "CORE" 



FIG. 23 

1100 



PUBLIC HEADER 802 


CLEAR 


PRIVATE HEADER 


COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 


SITE SPECIFIC 
LM KEY 


804 






ENCRYPTED EXECUTABLE BODY 
1106 


SITE SPECIFIC 
LM KEY 


DTD 1 1108(a) 


SITE SPECIFIC 
LM KEY 


a • • 


• ■ • 


DTD n 1108(n) 


SITE SPECIFIC 
LM KEY 



LOAD MODULE 



FIG. 24 

1200, 1202 



PUBLIC HEADER 802 




CLEAR 


PRIVATE HEADER 


COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 






804 








DATA AREA 
1206 

{MAY REFERENCE ONE OR MORE DTDs) 




SITE SPECIFIC 
UDE KEY 




* 







UDE (MDE) 



FIG. 25A 



USAGE BIT MAP 



ELEMENT REPRESENTING PAST 
USAGE OF ONE ATOMIC ELEMENT OF 
OBJECT 



1010 



1206 



FIG. 25B 



TIME 



RECORDING 
NUMBER 




FIG. 25C 



USAGE PAID FOR 5 MONTHS AGO 

USAGE PAID FOR 4 MONTHS AGO 

USAGE PAID FOR 3 MONTHS AGO 
USAGE PAID FOR 2 MONTHS AGO 

\USAGE PAID FOR IN PRIOR MONTH 

.USAGE PAID FOR IN CURRENT MONTH 



1206a 




WIDE BITMAP 
METER METHOD 



BILLING METHOD 



404 



406 



FIG. 25C 



USAGE PAID FOR 5 MONTHS AGO 

USAGE PAID FOR 4 MONTHS AGO 

USAGE PAID FOR 3 MONTHS AGO 
USAGE PAID FOR 2 MONTHS AGO 

\USAGE PAID FOR IN PRIOR MONTH 

v USAGE PAID FOR IN CURRENT MONTH 



1206a 




404 



406 



900 



906a. 



920(a)(1)(i), 
914a(1) 



920(a)(1)(ii) 



920(a)(2)(i), 
914(a)(2), 

920(a)(2)(ii) 



906b 



914(b)(1) 



FIG. 26 



PERMISSIONS RECORD 902 



808 



904 



PERC HEADER 



CS3 



4 



PRIVATE BODY KEYS 



RIGHTS RECORD HEADER 1 
908a 



CSR ! RIGHT KEYS 
910a • 912a 



CONTROL SET HEADER 1 916(a)(1) 



CONTROL METHOD 918(a)(1) 



REQUIRED METHOD HEADER 1 922(a)(1)(i) 



924(a)(1)(i)(A) 
METHOD OPTION ! 


924(a)(1)(i)(B) j 
METHOD OPTION 


■ • • 


REQUIRED METHOD HEADER 2 922(a)(1)(H) 


924(a)(1)(ii)(A) 
METHOD OPTION 


j 924(a)(1)(ii)(B) 
! METHOD OPTION 


I • ■ • 





CONTROL SET HEADER 2 916(a)(2) 


CONTROL METHOD 918(a)(2) 



REQUIRED METHOD HEADER 1 922(a)(2)(i) 


924(a)(2)(i)(A) j 
METHOD OPTION 


924(a)(2)(i)(B) | 
METHOD OPTION 


■ ■ • 


REQUIRED METHOD HEADER 2 922(a)(1)(H) 


924(a)(2)(ii)(A) 
METHOD OPTION 


S 924(a)(2)(ii)(B) 
I METHOD OPTION 


| m m m 



RIGHTS RECORD HEADER 2 
908b 



CSR 
910b 



RIGHT KEYS 
912b 



916(b)(1) i 


916(b)(2) 


CONTROL SET HEADER 1 | 


CONTROL METHOD 



FIG. 26A 



926 

928. 

930. 



940 

942- 



914(0) 
924(o)(a) 

924<o)(a)(1N 



( 



924{o)(a){2) 
920(o)(b) 

906a ^ 
908b- 



HEADER 900 



SITE RECORD NUMBER 



LENGTH OF PRIVATE BODY KEY BLOCK 



LENGTH OF THIS RECORD 



EXPIRATION DATE/TIME FOR THIS RECORD 



LAST MODIFICATION DATE/TIME 



ORIGINAL DISTRIBUTOR ID 



LAST DISTRIBUTOR ID 



OBJECT ID 



- CLASS OR TYPE OF PERMISSIONS RECORD/INSTANCE ID 
FOR RECORD CLASS 



NUMBER OF RIGHTS RECORDS 



VALIDATION TAG FOR THE RECORD 



KEY BLOCKS FOR THE PRIVATE BODY(e.g.. METHODS) IN OBJECT 



CONTROL SET RECORD 0 - COMMON TO ALL RIGHTS 



LENGTH OF THIS RECORD 



NUMBER OF REQUIRED METHOD RECORDS 



ACCESS TAG TO CONTROL MODIFICATION OF THIS RECORD 



REQUIRED METHOD RECORD 1 



LENGTH OF THIS RECORD 



,958 
960 

ACCESS TAG TO CONTROL MODIFICATION OF THIS RECORD X962 



NUMBER OF METHOD OPTION RECORDS 



METHOD OPTION RECORD 1 



LENGTH OF THIS RECORD 



LENGTH OF DATA AREA 



METHOD ID (TYPE/OWNER/CLASS/INSTANCE) 



964 
966 
968 

CORRELATION TAG FOR CORRELATION WITH REQUIRED METHOD J_97Q 

972 
974 
976 
978 



ACCESS TAG To CONTROL MODIFICATION OF THIS RECORD 



METHOD SPECIFIC ATTRIBUTES 



DATA AREA 



CHECK VALUE 



METHOD OPTION RECORD 2 



REQUIRED METHOD RECORD 2 



,932 
.934 
.936 
.938 



,944 
■ 948 
-950 

,952 

.954 
.956 



CHECK VALUE 



RIGHTS RECORD 1 



RIGHTS RECORD 2 



CHECK VALUE 



980 



PERC 



FIG. 26B 



908a 
982. 



HEADER 



914(a)(1). 
914(a)(2). 



LENGTH OF KEY BLOCK 



LENGTH OF THIS RECORD 



EXPIRATION DATE/TIME FOR THIS RECORD 



RIGHT ID 



NUMBER OF CONTROL SETS FOR THIS RIGHT 



ACCESS TAG TO CONTROL MODIFICATION OF 
THIS RECORD 



906a 



{ 



CONTROL SET FOR RIGHT 



KEY BLOCK FOR USE WITH THIS RIGHT 



^ 984 
^ 986 
^988 
- 990 

■ 992 

-910 
•912 



CONTROL SET 1 



CONTROL SET 2 



CHECK VALUE 



994 



PERC RIGHTS RECORD 



FIG. 27 

SHIPPING TABLE 



444A{1) 

_L_ 



SITE RECORD NUMBER 



USER (GROUP) ID 



REF. TO "FIRST* COMPLETED OUTGOING SHIPPING RECORD 



HEADER 
444A 



< 



SHIPPING 
RECORD J 
445(1) \ 



REF. TO "LAST* COMPLETED OUTGOING SHIPPING RECORD 



REF. TO "FIRST" SCHEDULED OUTGOING SHIPPING RECORD 



_444A(2) 
^ 444A(3) 
_444A(4) 
_444A(5) 

REF. TO "LAST' SCHEDULED OUTGOING SHIPPING RECORD J 444A(6) 

„444A(7) 

VALIDATION TAG FOR "FIRST' OUTGOING SHIPPING RECORD(S) _J__444A(8) 

. 444A(9) 



CHECK VALUE 



SITE RECORD NUMBER 



FIRST DATEmME FOR SCHEDULED SHIPMENT 



LAST DATE/TIME FOR SCHEDULED SHIPMENT 



ACTUAL DATE/TIME OF COMPLETED SHIPMENT 



OBJECT ID OF ADMINISTRATIVE OBJECT (TO BE) SHIPPED 



REF. TO ENTRY IN ADMINISTRATIVE EVENT LOG 



REF. TO NAME SERVICES RECORD NAMING RECIPIENT 



PURPOSE OF SHIPMENT 



STATUS OF SHIPMENT 



REF. TO "PREVIOUS" OUTGOING SHIPPING RECORD 



REF. TO "NEXT' OUTGOING SHIPPING RECORD 



VALIDATION TAG FROM HEADER 



VALIDATION TAG TO ADMINISTRATIVE EVENT LOG 



VALIDATION TAG TO NAME SERVICES RECORD 



VALIDATION TAG FROM PREVIOUS RECORD 



VALIDATION TAG TO NEXT RECORD 



CHECK VALUE 



SHIPPING RECORD N 



.444 



- 445(1 )(A) 

,445(1 XB) 
445(1 XC) 

.445(1 XD) 
, 445(1 )(E) 
. 445(1 )(F) 
,445(1)(G) 

- 445(1 )(H) 

- 445(1 XI) 

- 445(1 X J) 

- 445(1 )(K) 
,445(1 )(L) 
, 445(1 )(M) 
.445(1 )(N) 
„ 445(1 )(0) 

-445(1 XP) 
. 445(1 )(Q) 



. 445(1 )(R) 



FIG. 28 

RECEIVING TABLE 



HEADER 
446A 



< 



RECEIVING 
RECORD 
447(1) 



446A(1) 

_L_ 



SITE RECORD NUMBER 



USER (GROUP) ID 



REF. TO "FIRST' COMPLETED INCOMING RECEIVING RECORD 



REF. TO "LAST' COMPLETED INCOMING RECEIVING RECORD 



REF TO "FIRST' SCHEDULED INCOMING RECEIVING RECORD 



REF. TO "LAST" SCHEDULED INCOMING RECEIVING RECORD 



VALIDATION TAG FROM NAME SERVICES RECORD 



VALIDATION TAG FOR "FIRST" INCOMING RECEIVING RECORD(S) 



CHECK VALUE 



SITE RECORD NUMBER 




_447(1)(A) 


FIRST DATE/TIME FOR SCHEDULED RECEPTION 




^447(1 )(B) 


LAST DATE/TIME FOR SCHEDULED RECEPTION 




- 447(1 )(C) 


ACTUAL DATE/TIME OF COMPLETED RECEPTION 




__447(1)(D) 


OBJECT ID OF ADMINISTRATIVE OBJECT (TO BE) RECEIVED 




^ 447(1 )(E) 


REF. TO ENTRY IN ADMINISTRATIVE EVENT LOG 




_ 447(1 ){F) 


REF. TO NAME SERVICES RECORD NAMING SENDER 




_447(1)(G) 


PURPOSE OF RECEPTION 




^ 447(1 )(H) 


STATUS OF RECEPTION 




— 447(1X1) 


REF. TO "PREVIOUS" INCOMING RECEIVING RECORD 




— 447(1 )(J) 


REF. TO "NEXT" INCOMING RECEIVING RECORD 




- 447(1 XK) 


VALIDATION TAGS 


^447(1 KL) 


CHECK VALUE 




_ 447(1 )(M) 



RECEIVING RECORD N 



^446 

_446A(2) 
, 446A(3) 
^446A(4) 
,446A(5) 
. 446A(6) 
.446A(7) 

.446A(8) 
. 446A(9) 



. 447(2) 



% 



FIG. 29 

ADMINISTRATIVE EVENT LOG 



AOMIN. 
EVENT LOG 
RECORD 
442(J) 



HEADER 
443A < 



SUBRECORD 
442(J)(1) 



ADMINISTRATIVE EVENT LOG RECORD 1 



ADMINISTRATIVE EVENT LOG RECORD 2 



SITE RECORD NUMBER 



RECORD LENGTH 



ID OF ADMINISTRATIVE OBJECT 



NUMBER OF EVENTS 



VALIDATION TAG FROM SHIPPING OR 
RECEIVING TABLE 



CHECK VALUE 



SUBRECORD LENGTH 



DATA AREA LENGTH 



EVENT ID 



RECORD TYPE 



RECORD ID 



DATA AREA 



CHECK VALUE 



SUBRECORD N 



ADMINISTRATIVE EVENT LOG RECORD N 



442 

r 

„442(1) 
_ 442(2) 



, 443A(1) 
443A(2) 
,443A(3) 
„ 443A(4) 

., 443A(5) 

_443A(6) 
442(J)(1)(a) 

.442(J)(1)(b) 
442(J)(1)(c) 
442(J)(1)(d) 
■442(J)(1)(e) 
_442(J)(1)(f) 
-442(J)(1)(g) 



-442(J)(N) 



.442(N) 



466(1) v 

466(2) v 

466(3) _ 
466(4), 



TO 



OBJECT 



466(5) 



466(6) 



466(7) 



466(8) 



SITE RECORD NUMBER 



OBJECT TYPE 



CREATOR ID 



OBJECT ID 



POINTER INTO SUBJECT 
TABLE 462 



ATTRIBUTE(S) 



MINIMUM REGISTRATION INTERVAL 



TAG TO SUBJECT TABLE 
RECORD 



460 



TO SUBJECT 
TABLE RECORD(S) 



>-460(N) 



466(9) 



CHECK VALUE 



FIG. 31 

OBJECT REGISTRATION TABLE 



FIG. 32 _ 



SUBJECT 
TABLE 



"HEADER" 
468 



SUBJECT 
RECORD ^ 
470(1) ^ 



SITE RECORD NUMBER 



CREATOR ID 



ORIGINAL DISTRIBUTOR ID 



LAST DISTRIBUTOR ID 



OBJECT ID 



REF. TO "FIRST" SUBJECT 
RECORD 470 



TAG FROM OBJECT REGISTRATION 
TABLE RECORD 



TAG TO "FIRST' SUBJECT RECORD 



CHECK VALUE 



SITE RECORD NUMBER 



USER (USER GROUP) ID 



USER (USER GROUP) ATTRIBUTES 



REF. INTO USER RIGHTS TABLE 



REF. TO "NEXT' SUBJECT 
RECORD 



TAG FROM HEADER 



_ 468(9) 



TAG TO USER RIGHTS TABLE RECORD 



TAG TO "NEXT SUBJECT RECORD 



CHECK VALUE 



462 
468(1) 
468(2) 
.468(3^ 
.468(4) 

,468(5) 
468(6) 



462(M) 



468(7) 
468(8) 




TO URT 



,472(4) RECORD(S) 
.472(5) 



.472(6) 

,472(7) 

^472(8) 
. 472(9) 



FIG. 33 USER RIGHTS TABLE 



SITE RECORD NUMBER 



NUMBER OF RIGHTS RECORDS 



URT 
HEADER 



REF. TO "FIRST' RIGHT RECORD 



TAG FROM SUBJECT TABLE 



TAG TO RIGHTS RECORD 



CHECK VALUE 



RIGHTS 
RECORD 
HEADER 



SITE RECORD NUMBER FOR THIS 
RIGHTS RECORD 



RIGHT ID 



POINTER TO "NEXT' RIGHTS RECORD 



POINTER TO "FIRST' SET OF USER 
CHOICE RECORDS 



TAG FROM URT HEADER 



TAG TO "FIRST" SET OF USER 
CHOICE RECORDS 



476(7) 



CHECK VALUE 



SET 
OF 
USER 
CHOICE 
RECORDST 



SITE RECORD NUMBER FOR THIS 
USER CHOICE RECORD 



USER(USER GROUP) ID 



ATTRIBUTES 



REF. TO "NEXT" SET OF USER CHOICE RECORDS 



NUMBER OF USER CHOICES 



TAG FROM RIGHTS RECORD HEADER 



USER CHOICE RECORD 1 



USER CHOICE RECORD 2 



USER CHOICE RECORD N 



CHECK VALUE 




464 
"474(1) 



-474(2) 

474(3) 464(K) 
474(4) ^/ 

,474(5) 

,474(6) 



,476(1) 

476(2) 
476(3) 
476(4) 



.476(5) 
476(6) 



/478(1) 

, 478(2) 
x 478(3) 



, 478(4) 
„478(5) 

,478(6) 
_ 480(1) 

480(2) 



480(N) 



FIG. 34A 

SITE RECORD 



L 



482(J) 



482 



TYPE OF RECORD 



484(1) 



OWNER OR CREATOR OF RECORD . _484(2) 

CLASS _484(3) 

INSTANCE . _484(4) 

TYPE SPECIFIC DESCRIPTOR (e.g., OBJECT ID) ASSOCIATED 484(5) 
WITH RECORD 

TABLE IN WHICH THE RECORD IS LOCATED | 484(6) 



POINTER - OFFSET, WITHIN THE TABLE, TO WHERE ^484(7) 
THE RECORD BEGINS 

RECORD LENGTH Jl84(8) 

484(9) 



VALIDATION TAG FOR RECORD 

484(10) 



CHECK VALUE 



FIG. 34 



460 



48 . 2 SITE RECORD TABLE 



OBJECT 
REGISTRATION 
TABLE 



1 



462 




GROUP RECORD 
TABLE 



BILLING 1 



AUDIT 1 



AUDIT 2 



BUDGET 1 



BUDGET 2 



BILLING 2 



FIG. 34B 



GROUP RECORD 



486 



L 



486(J) 



SITE RECORD NUMBER 



NUMBER OF REFERENCE SUBRECORDS 



VALIDATION TAG FOR GROUP OF RECORDS 



REFERENCE SUBRECORD 1 



ft£F.(SlT£ ftgCORD NUMBSft 1) FOft 1STft£CUKb IN 
GROUP 



VALIDATION TAG FOR RECORD 



REFERENCE SUBRECORD 2 



R££ (SltE RECORD NUMBER 2) FOR 1ST RECORD IN 
GROUP 



VALIDATION TAG FOR RECORD 



J88{1) 

_488(2) 

_488(3) 
-488(4) 
/ 490(A) 

^ 490(B) 
- 488(5) 
490(C) 
490(D) 



CHECKSUM (CRC) 



488(6) 



1150 



Q START ^ 



FIG. 35 



1152 
1154 



APPLIANCE CALLS CLEARINGHOUSE 



APPLIANCE AND CLEARINGHOUSE AUTHENTICATE ONE 
ANOTHER AND AGREE ON A MESSAGE KEY 



1158 




1156 
YES 



DOES APPLIANCE HAVE 
AUDIT INFO TO SEND? 



NO 



APPLIANCE SENDS ADMINISTRATIVE OBJECT(S) 
CONTAINING AUDIT INFO 



1160 



2x 



CLEARINGHOUSE SENDS RESPONSIVE ADMIN. OBJECT(S)| 



1162 



APPLIANCE UPDATES SECURE DATABASE 
BASED ON OBJECTS RECEIVED 



1163 



1164 




N 



1166 



APPLIANCE SENDS ADMINISTRATIVE OBJECT(S) 
REQUESTING BUDGETS AND/OR PERMISSIONS 



CLEARINGHOUSE SENDS RESPONSIVE 
ADMINISTRATIVE OBJECT(S) 



1168 



APPLIANCE UPDATES SECURE DATABASE BASED! 

ON OBJECTS RECEIVED I 




s 

o 




viva 
aiidAaoN3 



viva onv 

A3* 31\d 19W 



CD 
CO 

O 

u. 



CO 



a. 
> 
a: 
o 

Ui 

a 



VIVO QNV A3M 
103f80 NIVNCW 



z 

o 

s§ 

a: e 
o £ 

XCO 
< 



3SNOdS3U 



3dAllS3n03M 

aw laxou. 





Q _ 


AND 


U Ql 
> CL 


O 0£ < 








UJ 




H 
Z 

a. 



U 

r 

o 



Z > UJ , 
UJ CQ 3 5 UJ 

jt>Oh(- 



uj cr: 



< V). 



uj £ x 5 CO 
x ± o ^ 





viva 

Q31dAH0N3 



viva onv 

A3* 3"lld 





viva NOiidAaoNa awl 

A3* 31U1N3W39VWW 




FIG. 38 




STORE ITEM IN 
SECURE DATABASE 



READ AND DECRYPT 
OTHER RECORD(S) 
FROM SECURE 
DATABASE 

USING OLD KEY(S) 





' 4 naa 


GENERATE NEW KEY _ 








1088 


ENCRYPT RECORD 
WITH NEW KEY 



1090 




YES 



1092 



RE-ENCRYPT SAID 
OTHER RECORD(S) 
USING NEW KEY 



1094 



DISCARD OLD KEY(S) 



1096 



SAVE NEW KEY 






STORE EN 
RECG 
IN SECURE 


CRYPTED 

RD(S) 

DATABASE 



1097 



1098 



GENERATE 
BACKUP KEY(S) 



1 254 READ AND DECRYPT 
ITEM 



1256 



1258 



1260 



1262 



ENCRYPT ITEM WITH 
BACKUP KEY(S) 



[FTC 



WRITE ENCRYP'lED 
ITEM TO BACKUP 
STORE 




ENCRYPT SUMMARY 
SERVICES AUDIT INFO. 
WITH BACKUP KEY(S). 
WRITE TO 
BACKUP STORE 



1264 



ENCRYPT BACKUP 
KEY(S) AND OTHER ID 
INFO. 
WITH PUBLIC KEY; 
WRITE TO 
BACKUP STORE 



1266 



ENCRYPT BACKUP 
KEY(S) WITH ADMIN. 
KEY; WRITE TO 
BACKUP STORE 



START 



FIG. 40 

RECOVER SECURE DATABASE 



1268 



ESTAI 
SEC 
COMMUN 


3USH 
URE 

ICATIONS 






EXTRACT 
"WORK IN PROGRESS" 
AND SUMMARY VALUES 


1 



REQUEST CURRENT 
BACKUP FROM SPU 



1270 



1272 



1274 



RESET SUMMARY 
VALUES AND COUNTERS 
CONSISTENT WITH LAST 
BACKUP 



1276 



RESTORE SECURE DB 
FROM BACKUP 



1278 



COMPUTE BILLS BASED 
ON RECOVERED 
VALUES 



1280 



1282 



PERFORM OTHER 
ACTIONS TO RECOVER 
FROM SPU DOWNTIME 



6ooi} x 



VDE Node 



Q 

m 
w 
a 

£3 
o 



10008 



3- 







Q 
O 




METH 


Response-1 








1454 



1452} . ^ 
Event and optidnal information 



600A] s 



VDE Node 



1000 A 







Q " 

o 


, RequesM 


X 
Lil 










{T450 



Figure 41a 



600B] y 



VDE Node 



1000?|. 



1454 



3 







Q 

o 




METH 


Response-1 






, Request-4 


[T468 



600A] x 



VDE Node 



ioooa]. 





[T450 






Q 
O 


: Request-1 


I 

- 1- 
LU 




• Response-4 







1470 



1469}- , . _ 
Event and optional information 



1452]^ 
Event and optional information 



Figure 41 



600C] X 



VDE node 



1460 



ioooc} 



Q 
O 
I 

LJJ 



1 Response-2 



,Request-3 



1462 



1464 



g. 



600B 



Event 
and 

optional 
information 



Event 
and 
optional 
information 



- [?458 



VDE node 



i45 il E 456 



[?466 



1000B 





; Response-3 


o 


' Request-2 


METH 


' Response- 1 






> Request-4 


{T468 



1469 



600A 1 



Event 
and 

optional 
information 



Event 
and 
optional 
information 



VDE node 




[T450 






t 




Q 
O 


' Request-1 




I 

tD 








- Response-4 


ioooa]' 








1470)' 





Figure 41c 



102 



3, 



Content object creator VDE node 

1484A| [l480A 



1510A 



V 


! use 


J DGEl 


/ Request 


1 Response 


CO 


. Reply 




» Distribute 

i L 



1472A 



3' E' 



1476A Q478A 
Use 



475A 



1482AB] v 
1474AB} ^ 



106^ 



Request 
s More 
\Budget 



1482AB 



Grant 
Budget 



More 
Budget 



Content object distributor VDE node 



1484B] [l480B 



15i6b}" 





; Use 


J DGEl 


1 Request 


1 Response 


CD 


; Reply 




* Distribute 



1476B[l478B 



1475b]' {t472B 



-Use- 



1482BC] 

1474BCj. 



Request 
More 
Budget 



, [U82BC 



11 



Grant 
Budget 



More 
Budget 



Content use VDE node 



1510C]' 





; Use ' 


UDGET 


1 Request 




03 


Reply 


/ 





1475C]' 



•Use 



Figure 41 d 



/"Start BUDGET Method, 
Use Process J 

Atomic Element, Event 
Count 

+ 



Prime BUDGET Audit 
Trail 



.[2252 



-Write 



2256 



Obtain DTD for 
BUDGET 



-Read- 



,{2260 



Obtain BUDGET 



4 Read- 




-Yes- 



Update BUDGET using 
AE and count 



-Write- 



,(2274 



Save BUDGET Use 
Audit Record 



-Write 



BUDGET Method 
Succeeded 



,(227. 



2250 



,{2254 




BUDGET Audit 
Trail UDE 



J 



,[2258 



DTD for BUDGET 
UDE 



,[2262 



V 



BUDGET UDE 



,[2266 



Commit BUDGET 
Failure Audit Record 



,[2272 



BUDGET UDE 



,(2276 




BUDGET Audit 
Trail UDE 



J 



BUDGET 
Method Use 
Process Flo\ 



2268 



BUDGET Method 
Failed 



Figure 42a 



jStart BUDGET Method 
[Administrative Request) 
\^ Process y 



2280 



Prime BUDGET 
Administrative Audit 
Trail 



-Write- 



2284 



Queue Request for 
Administrative 
Processing of 
BUDGET 



-Write- 



2288 



Save BUDGET 
Administrative Audit 
Trail 



-Write- 



Some time later 



Prime 
communications audit 
trail 



2292 



-Write- 



2296 



Write BUDGET 
Administrative 
Request into 
Administrative 
Object 



-Read- 



2300 



Save communications 
audit trail 



-Write- 



2250 



,{2282 



f 



BUDGET 
Administrative 
Audit Trail 



2286 



BUDGET 
Administrative 
Request 



,{2290 



BUDGET 
Administrative 
Audit Trail 



2294 



Communications 
audit trail 



BUDGET UDE t 
BUDGET Audit 
Trail UDE(s), and 
BUDGET 
Administrative 
Request 
Record(s) 



BUDGET Method 

Administrative 
Request Process 
Flow 



,.[2298 



Communications 
audit trail 



^{2302 



V 



,[2304 



:nd BUDGET Methoi 
(Administration Request) 
Process 



Figure 42b 



art BUDGET Method 
Administrative 
^Response Process. 



2250 



,{2306 



,[2308 



Prime BUDGET 
Communications and 
Response Audit Trail 



- Write - 



Communications 
and Response 
Audit Trail 



3UDGET Method 
Administrative 

Response 
Process Flow 



V 



2310 



Unpack Admin. 
Object and retrieve 
BUDGET 
request(s), audit 
trail(s) and 
record(s) 



-Write- 



2314 



Retrieve request and 

determine the 
response method to 
run to process the 
request 



-Read- 



Send event(s) 
contained in 
Request record(s) 
to the Response 
Method and 
generate 
Response records 
and Response 
request 



,(2318 



-Read/Write 



Write BUDGET 
Administrative 
Response records 
into Administrative 
Object 



2322 



4 Read- 



,{2326 



Save communications 

and response 
processing audit trail 



-Write- 



2312 



BUDGET 
Administrative 
->j Request Budget 
records, and audit 
information 



7 



,{2316 



Administrative 
Request 



2320 




BUDGET Request / 
and Response 
records \ 



2324 



BUDGET UDE and 
BUDGET 
Administrative 
Response 
Records 



,{2328 



Communications 
and response 
processing audit 
trail 



,{2330 



:hd BUDGET Method 

Administration 
^Response Process^ 



Figure 42c 



f Ac 



rt BUDGET Methc 
Administrative Reply 
Process 



1 

Prime E 
Administf 

WUI 1 II 1 IUI 111*4 

Tr 


IUDGET 
ative and 

sftnne At iHit 
aUOnS MUUll 

aii 







Extract Response 
Records and 
Requests from 
Administrative 
Object and write 
Reply records to 
the secure 
database 



Save BUDGET 
Administrative and 
Communications Audit 
Trail 



Some time later 



Prime audit trail (if 
required) 



■Retrieve Reply record 
i»d determine method 
required to process it 



Send^event(s) 
contained in Reply 

record ($) to the 
Reply method and 
generate / update 
database records 



,{2332 
Write - 



,{2336 



-Write - 



,(2340 
— Write- 



,[?342 



-Write 



,{2344 
— Read- 



Delete Reply record(s) 
from database 



,{2352 
—Delete- 



2250 BUDGET Method 
Administrative 
Reply Process 
\ I334 Flow 



BUDGET 
Administrative and 
Communications 
Audit Trail 



1 



f 

V 



BUDGET Reply 
Records and 
Requests 



[2336 



BUDGET 
Administrative and 
Communications 
Audit Trail 



7 (2341 




7 (2343 



Audit Trail UDE 



,{2346 



BUDGET Reply 
records 




{2350 



BUDGET records 



2353 



V 



BUDGET Reply 
Record(s) 




,{2356 



md BUDGET Method 
Administration Reply 
Process 



Figure 42d 



'Start Register MethodN 
Use Process J 

— i — r 

REGISTER Event [2402 



Prime REGISTER 
Audit Trail 



-Write 




-Yes- 



Extract REGISTER 
record set from PERC 
or REGISTER MDE 



-Read- 




-No- 



Yes 



2422 



User selects 
registration options 
from method 
options in PERC 



Validate user selected 
registration options 



,{2426 




2428 



-Yes- 



2400 



2404 




REGISTER Trail 
UDE 



2408 



REGISTER Method 
completed 



2410 



PERC and/or 
REGISTER MDE 
(catalog) 



Queue REGISTER 
request record 



2416 



-Read- 



REGISTER Method 
Suspended 



,{2418 




2424 



Display 



URT 



,-(2432 



Write URT containing 
user selections to 
database 



2430 



REGISTER 
Method Use 
Process Flo 



,(2420 



REGISTER 
Request Record 



,{2432 




c 0 



,{2436 



REGISTER Method 
Completed 



Figure 43a 



Start REGISTER ^ 
Method Administrative 
Request Process J 



2440 



Prime 
communications audit 
trait 



-Write- 



2446 



Determine site 
configuration as 
permitted by privacy 
filter 



-Read- 



2448 



Write REGISTER 
Administrative 
Request into 
Administrative 
Object 



-Read- 



2452 



Save communications 
audit trail 



-Write- 



2456 



End REGISTER \ 
Method Administration] 
Request Process J 



f 



REGISTER 
2400 Method 

Administrative 
Request Process 
Flow 



Communications 
audit trail 



2444 



7 



Stored data 



2450 



REGISTER 
Administrative 
Request 
Record(s) 



.2454 



Communications 
audit trail 



• 



Figure 43b 



Start REGISTER^ 
Method Administrative 
^Response Process J 



2400 



2460 



,(2462 



Prime REGISTER 
Communications and 
Response Audit Trail 



-Write- 



V 



Communications 
and Response 
Audit Trail 



REGISTER 
Method 
Administrative 

Response 
Process Flow 



,{2464 



2466 



Unpack Admin. 
Object and retrieve 
REGISTER 
request(s) 



r 



~ Write - 



REGISTER 
Administrative 
Requests and 
configuration 

information 



,{2468 



Retrieve request and 

determine the 
response method to 
run to process the 
request 



-Read- 




Administrative 
Request 



,{2470 



A 



2474 



Write failure response 
record to database 



Send eyent(s) 
contained in 
Request record(s) 
to the Response 
Method and 
generate 
Response records 
and Response 
request 



,(2478 



-ReadA/Vrite — » 



V 



REGISTER 
Request and 
Response records 
(response records, 
PERC t UDE(s)) 



Write REGISTER 

Administrative 
Response records 
into Administrative 
Object 



,[2480 



-Read 




Save communications 

and response 
processing audit trail 



,{2484 



r 



-Write- 



PERC, UDE(s), 
Methods and 
REGISTER 
Administrative 
Response 
Records 



Communications 
and response 
processing audit 
trail 



,{2488 



End REGISTER 
Method Administration ] 
^Response Process. 



2486 



Figure 43c 



Start REGISTER 
Method Administrative 
Reply Process 



1 

Prime RI 
Administr 
Communis 
Tr 


f 

EGISTER 
ative and 
ations Audit 
ail 


r-i 1 





Extract Response 
Records and 
Requests from 
Administrative 
Object and write 
Reply records to 
the secure 
database 



Save REGISTER 
Administrative and 
Communications Audit 
Trail 



Some time later 



Prime Audit Trail (if 
required) 



Retrieve Reply record 
and determine method 
required to process it 



,(2494 



-Write 



2498 



-Wrrte- 



,[2501 
— Write - 



^{2503 
4 Read- 



Send event(s) 
contained in Reply 

record(s) to the 
Reply method and 
generate / update 
database records 



Delete Reply record(s) 
from database 



,{2510 
Delete- 



(2400 




REGISTER 
Administrative and 
Communications 
Audit Trail 



PEGISTER 
Method 
Administrative 
§4M Reply Process 
Flow 




REGISTER Reply 
Records and 
Requests 



7 [2496 



1 



/ REGISTER 

f Administrative and 

~H Communications 

\ Audit Trail 



(2500 



2502 



Audit trail records 



f 
V 



2504 



REGISTER Reply 
records 




REGISTER secure / r- 
database records / .-li 508 

(Methods, Load 

Modules, MDE, 
UDE) 



REGISTER Reply 
Record(s) 



Audit trail records 



T 



}■ 
\ 



Write 



Write Audit Trail (if 
required) 



2514 



End REGISTER" 
Method Administration 
Reply Process 



Figure 43d 



/'StartAUDIT Methc 
r Administrative Request) 
V Process 



2522 



Prime AUDIT 
Administrative Audit 
Trail 



-Write- 



,[2526 



Queue Request for 

Administrative 
Processing of AUDIT 



-Write 



,[230 



Save AUDIT 
Administrative Audit 
Trail 



-Write 



Some time later 



Prime 
communications audit 
trail 



2534 



-Write 



,[2538 



Write AUDIT 
Administrative 
Request(s) into 
Administrative 
Object 



2520 





-Read- 



,(2542 



Save communications 
audit trail 



-Write 



,[2524 



AUDIT Method 
Administrative 



AUDIT 
Administrative 
Audit Trail 



J 

V 



Request Process 
Flow 



(2528 



AUDIT 
Administrative 
Request 



7 

V 



,|2532 



AUDIT 
Administrative 
Audit Trail 



7 
V 



2536 




7 



Communications 
audit trail 



2540 



Specific UDE, 
Audit Trail 
UDE(s), and 
Administrative 
Request 
Record(s) 



2544 




7 



Communications 
audit trail 



2546 



End AUDIT Methoc 
(Administration Request) 
Process 



Figure 44a 



Start AUDIT Methc 

Administrative 
^Response Process, 



2520 



2550 



2552 



Prime AUDIT 
Communications and 
Response Audit Trail 



-Write - 



Communications 
and Response 
Audit Trail 



AUDIT Method 
Administrative 

Response 
Process Flow 



2554 



Unpack Admin. 
Object and retrieve 
AUDIT request(s), 

audit trail(s) and 
record(s) 



,{2556 



-Write- 



AUDIT 
Administrative 
Request, Budget 
records, and audit 
information 



•6 



2558 



,{2560 



Retrieve request and 

determine the 
response method to 
run to process the 
request 



-Read 




Administrative 
Request 



Send event(s) 
contained in 
Request record(s) 
to the Response 
Method and 
generate 
Response records 
and Response 
request 



,{2562 



-Read/Write 



2564 




AUDIT Request 
and Response 
records 



Write AUDIT 
Administrative 
Response records 
into Administrative 
Object 



,{2566 



2568 



-Read- 



AUDIT UDE(s) and 
Administrative 
Response 
Records 



,{2570 



2572 



Save communications 

and response 
processing audit trail 



-Write - 



Communications 
and response 
processing audit 
trail 



2574 



End AUDIT Methoc 

Administration 
^Response Process , 



Figure 44b 



start AUDIT Method^ 
Administrative Reply 
Process > 



2520 



,{2580 



Prime AUDIT 
Administrative and 
Communications Audit 
Trail 



-Write - 



AUDIT 
Administrative and 
Communications 
Audit Trail 



A^DIT Method 
Administrative 
Reply Process 
Flow 



Extract Response 
Records and 
Requests from 
Administrative 
Object and write 
Reply records to 
the secure 
database 



2584 



2586 



-Write 




AUDIT Reply 
Records and 
Requests 



,(2590 



Save AUDIT 
Administrative and 
Communications Audit 
Trail 



,[2588 



-Write - 



AUDIT 
Administrative and 
Communications 
Audit Trail 



7 



Some time later 



,{2594 



Retrieve Reply record 
and determine method 
required to process it 



2592 



-Read- 



AUDIT Reply 
records 



,[2595 



,[2596 



Send event(s) 
contained in Reply 

record(s) to the 
Reply method and 
generate / update 
database records 



-Read/Wnte- 



secure database 
records 



7 
V 



,|2597 



,(2598 



Delete Reply record(s) 
from database 



-Delete- 



AUDIT Reply 
Record(s) 



2599 



End AUDIT Method^ 
Administration Reply 
Process > 



Figure 44c 



I"* UJ . 

Z OT £ IE Z 

UJ < O LU O 



in 
O 

4L. 




a 

uj 2 

uj 2 
a: 
o 
at 
a 



a 

at 



UJ CQ 

CD 



a 

UJ 



GO 
I- 
Z 
UJ 

> 

UJ 



£uj 

UJ 



Q 
uj 

Li. 



3 

a 

Z 

81 

UJ 



FIG. 46 



SYSTEM EVENT 
OCCURS 



CONTROL SET 
FROM PERC " 



CONTROL 
METHOD 



410 




408 



EVENT 
METHOD 

A 



402 



METER 
METHOD 



BILLING 
METHOD 



METER UDE 



BUDGET 
METHOD 



BILLING 
TRAIL 



METER TRAIL 
UDE 



BUDGET UDE 
METER UDE 
BILLING UDE 



BUDGET 
UDE 



BUDGET TRAIL 
UDE 




CO 



2* 
So 

Ui Q 

w ° 
> 

CO 



n Start of OPEN MethodN 
^ Process J 



1500 



OPEN 
Method Use 
Process Flow 



OPEN Event 



CONTROL Method 



-OPEN Event- 



- Atomic Element and Count - 



-Atomic Element and Count - 
-Meter Value 



— Meter Value - 
-Billing Amount - 



o ». o j i r Billing Value-» 

create Keao unannei gu^get Value 
and establish read / 
use controls 



Read Channel 

i 

'End of OPEN MethodN 
Process J 



510 



BUDGET 
Method 



508 



BILLING 
Method 



EVENT 
Method 



504 



,Q508 



METER 
Method 




CO « 



% 



Figure 49 



1500 



Start of OPEN Method 
Process 



OPEN Event 



,\VS24 



URT, PERC for 
(object, user) 



7 



1632 



OPEN Method 
Elements (Method 
core, LM, UDE. 
MDE) 



534 



7 



Audit UDE 4 Write 



V 



-Read 



-Read 



Determine identification 
of object and user to be 
opened. 



,Q520 



OPEN Event Object ID. User ID 
,[1522 




,[1526 



Call the 
REGISTER 
Method for the 
Object. Restart the 
OPEN Method 

once the 
registration is 
complete. 



1536 



Start Secure Database 
Transaction 



CONTROL Method 




Figure 49a 




1502 



1504 



1540 



Prime EVENT 
Audit Trail (if 
required) 




Wnte- 



r 

V 



EVENT Method 
Audit Trail UDE 



,[1542 



1544 



Map OPEN Event to 
Atomic Element # and 
event count using Map 
MDE 



-Read- 



EVENT Method Map | 
MDE 



Event, Event Count. Atomic Element #, Object ID, User ID 



,'Q 548 



1546 



•1 



Write EVENT Audit 
Trail (if required) 



-Write 




EVENT Method 
Audit Trail UDE 



Atomic Element #, Event 
Count 



-Yes. Pass- 




,[l550 



-No. Fail EVENT Method - 



EVENT Method 




Rod back secure 
database transaction 



,[1556 



OPEN Method Failed 



CONTROL Method (cont'd) 



Figure 49b 




B 



1502 



1506 



^560 



Prime 
METER 
Audit Trail (if 
required) 



-Write - 



METER Method 
Audit Trail UDE 



7 



1564 



Ik 



Add EVENT Count 
to Meter value 



»- Read/Write -» 



METER Method, 
UDE (the 
Meter) 



562 



1566 



Write METER 
Audit Trail (if 
required) 



-Write 



J METER Method 
Audit Trail UDE 



7 



METER Value 




,[1570 



METER Method 




No* 



Roll back secure 
database transaction 



,[l576 



OPEN Method Failed 



1574 



CONTROL Method (cont'd) 



Figure 49c 



1508 



£57$ 



JlSBO 



1582 



1586 



3, 



Prime 
BILLING 
Audit Trail (if 
required) 




-Write 




Map Atomic 
Element #, Count, 
and Meter Value to 
Billing Amount 
using Map MDE 



-Read - 



Billing Amount 



Write BILLING 
Audit Trail (if 
required) 



-Write 



Billing Amount 



BILLING 
Method Audit 
Trail UDE 



7 



BILLING 
Method Map 
MDE (Price list) 



1584 




BILLING 
Method Audit 
Trail UDE 



1588 




Figure 49d 




1502 



1510 



£600 



1602 



3. 



Prime 
BUDGET 
Audit Trail (if 
required) 




Add Billing Amount 
to Budget value 



Write 




«- Read/Write - 



BUDGET 
Method Audit 
Trail UDE 



7 



BUDGET 
Method UDE 
(the Budget) 



1604 



1606 



«1 



-Yes, FAILS 



Write BUDGET 
Audit Trail (if 
required) 



-Write - 



BUDGET 
Method Audit 
Trail UDE 



1608 




1610 




-No. Fails 



BUDGET Method 



1612 




No« 



Roil back secure 
database transaction 



1616 



-^OPEN Method Failed^ 



N Q614 CONTROL Method (cont'd) 



Figure 49e 



1618] 



1622^ 



1626 




ft 



1620 



Write OPEN Audit 
Trail (if required) 



-Write 




Audit UDE 



Establish channel 
for READ Event 
Processing 



-Read- 



Channel ID 



Yes 



URT, PERCforj 
(object, user) 




Roll back secure 
database 
transaction 



1628 



1624 



1502 



,[1630 



OPEN Method 



Failed 



1632 



*1 



1634 



«1 



Commit secure 
database 
transaction 



Tear down channel 
for open 
processing 
(optional) 



CONTROL Method (cont'd) 



1636 



f>EN Method Proces^ 
Completed J 



Figure 49f 



'Start of READ Method> 
i Process > 



READ 
1650 Method Use 
Process Flow 



READ Event 



CONTROL Method 

Decrypt, fingerprint and 
obscure content 



-READ Event - 



-Atomic Element and ount- 



- Atomic Element and Count - 
Meter Value 



— Meter Value - 
-Billing Amount- 



Billing Value n 
Budget Value 



Decrypted Content 



"End of READ MethodN 
Process J 



£660 



BUDGET 
Method 



{1658 



BILLING 
Method 



EVENT 
Method 



654 



^656 



METER 
Method 




Figure 50 



1650 



'Start of READ Method) 
v Process ; 



1652 



READ Event 



Determine identification 
of object and user ID 
for read 



{7662 



READ Event, Object ID, User ID 




Start Secure Database 
Transaction 



,0- 



1668 



CONTROL Method 




Figure 50a 




1652 



1654 



Prime EVENT 
Audit Trail (if 
required) 




r 



Write- 



1678 



a-. 



EVENT Method 
Audit Trail UDE 



Map READ Event to 
Atomic Element # and 
event count using Map 
MDE 



-Read- 



EVENT Method Map 
MDE 



1680 



Event, Event Count, Atomic Element #, Object ID, User 



1682] x 



Write EVENT Audit 
Trail (if required) 



-Wnte- 



EVENT Method 
Audit Trail UDE 



1684 



Atomic Element #, Event Count 




1686 



EVENT Method 




Roll back secure 
database transaction 



READ Method Failed 



^(jjaw CONTROL Method (cont'd) 

Figure 50b 




1652 



1656 



,£ 694 



Jvbsb 



Prime 
METER 
Audit Trail (if 
required) 




Write- 



V 



METER Method 
Audit Trail UDE 



^700 



Add EVENT Count 
to Meter value 



■Read/Write-* 



jl702 



Write METER 
Audit Trail (if 
required) 



-Write 



METER Method i 
UDE (the 
Meter) 



1704 




METER Method 
Audit Trail UDE ' 



METER Value 




No* 



Roll back secure 
database transaction 



READ Method Failed 



' N [l710 



CONTROL Method (cont'd) 



Figure 50c 




1652 



1658 



JT714 



£716 



Prime 
BILLING 
Audit Trail (if 
required) 




Write- 



V 



BILLING 
Method Audit 
Trail UDE 



Map Atomic 
Element #, Count, 
and Meter Value to 
Billing Amount 
using Map MDE 



-Read- 



BILLING 
Method Map 
MDE (Price list) 



Billing Amount ^1722 



I* 



1724 



Write BILLING 
Audit Trail (if 
required) 



-Write 




BILLING 
Method Audit 
Trail UDE 



Billing Amount 




1726 



BILLING Method 



1728 




No* 



Roll back secure 
database transaction 



,[1732 



READ Method Failed 



* ^730 CONTROL Method (cont'd) 



Figure 50d 




0562 



1660 



,-Q 734 



Prime 
BUDGET 
Audit Trail (if 
required) 



,{1736 




Write 




BUDGET 
Method Audit 
Trail UDE 



1740 



Add Billing Amount 
to Budget value 



■Read/Write- 



f 

V 



BUDGET 
Method UDE 
(the Budget) 



1742 



1744 



Write BUDGET 
Audit Trail (if 
required) 



-Write - 



BUDGET 
Method Audit 
Trail UDE 



-Yes, PAILS 




1746 



-No. PASS 



BUDGET Method 




No» 



Roll back secure 
database transaction 



1752 



READ Method Failed 



^ CONTROL Method (cont'd) 



Figure 50e 




£6.2 



Figure 50f 



754 



,[l756 



Write OPEN Audit 
Trail (if required) 



-Write 




Audit UDE 



R758 



1760 



Determine key to 
use to decrypt 
content 



-Read 




PERC for 
(object, user) 



Ob 



1762 



am 



encrypted 
content using 
ACCESS 
Method 



1764 



Decrypt content 
using DECRYPT 
method 



CONTROL Method (cont'd) 



,0 



1768 



Call 

FINGERPRINT 
Method 




1774 



Commit secure 
database transaction 



,[1776 



'READ Method Process 
l Completed j 



Start of WRITE Methoc 
Process 



1780 



WRITE Event 



,[l782 



CONTROL Method 

Encrypt content and 
update event 



-WRITE Event- 



-Atomic Element and Count - 



-Atomic Element and Count- 
Meter Value 



— Meter Value- 
-Billing Amount- 



Bitting Value-) 
Budget Value 



WRITE 
Method Use 
Process Flow 



,'Q 784 



EVENT 
Method 



1786 



Encrypted Content 

, 1— , 

'End of WRITE Method 
v Process 




Figure 51 



1780 



Start of WRITE Methoc 
Process 



792 



1782 



WRITE Event 



.'0 



1794 



804 



Audit UDE 



-Write - 



Determine identification 
of object and user ID 
for read 



WRITE Event, Object ID, User 10 

,[1796 



Yes 



Prime Audit (if 
required) 



1798 




802 



Call the OPEN 
Method for the 
Object Restart the 
WRITE Method 

once the 
registration is 
complete. 



,0 



800 



Start Secure Database 
Transaction 




ft 



Figure 51a 




1782 



1784 



Prime EVENT 
Audit Trail (if 
required) 




Write 




,Ra08 



EVENT Method 
Audit Trail UDE 



.-[« 



1612 



Map WRITE Event to 
Atomic Element # and 
event count using Map 
MDE 



-Read- 



EVENT Method Map 
MDE 



V 



Event. Event Count Atomic Element #, Object ID, User 
ID 



,[1816 



1814 



Write EVENT Audit 
Trail (if required) 



-Write- 



EVENT Method 
Audit Trail UDE 



Atomic Element #, Event 
Count 



,[l820 



Yes, 
"Pass™ 




1818 



-No- 



Update EVENT Method 
Map MDE to reflect 
new data 



-PASS if update succeeded, FAIL otherwise - 



EVENT Method 






y [l824 




Roll back secure 


— ( 


database transaction 





.<[• 



1826 



WRITE Method Failed 



Y« 



B 



CONTROL Method (cont'd) 



Figure 51b 




1782 



1786 



Prime 
METER 
Audit Trail (if 
required) 




Write - 



METER Method 
Audit Trail UDE 



,(l830 

7 



,[l834 



,[1836 



Add EVENT Count 
to Meter value 



«- Read/Write i 



METER Method 
UDE (the 
Meter) 



,Qd38 



.ft 



1840 



Write METER 
Audit Trail (if 
required) 



- Write - 



METER Method 
Audit Trail UDE! 



METER Value 




-Yes. Pass 



-No, Fail METER Method 



METER Method 



1844 




Roil back secure 
database transaction 



^848 



^[1848 



-♦^WRITE Method Faile d^ 

CONTROL Method (confd) 



Figure 51c 




1782 



1788 



/ Prime 
/ BILLING 
\ Audit Trail (if 

\ required) 




,Qes2 



Write- 



f 

V 



BILLING 
Method Audit 
Trail UDE 



Map Atomic 
Element # f Count 
and Meter Value to 
Billing Amount 
using Map MDE 



-Read- 



BILLING 
Method Map 
MDE (Price list) 



7 



Billing Amount 



,Qobo 



Write BILLING 
Audit Trail (if 
required) 



-Wnte 




BILLING 
Method Audit 
Trail UDE 



Billing Amount 





No* 



Roll back secure 
database transaction 



WRITE Method Failed 



1866 



CONTROL Method (cont'd) 



Figure 51 d 




1782 



1790 



1870 



,(l872 



Prime 
BUDGET 



Audit Trail (if / 
required) 




BUDGET 
Method Audit 
Trail UDE 



,Q 874 



1876 



Add Billing Amount 
to Budget value 



-Read/Write-* 



v 



BUDGET 
Method UDE 
(the Budget) 



,[l878 



1880 



Write BUDGET 
Audit Trail (if 
required) 



-Wnte- 



BUDGET 
Method Audit 
Trail UDE 



-Yes. FAILS 




BUDGET Method 



-No. PASS 




Roll back secure 
database transaction 



888 



" v [lB86 



-►^WRITE Method Failed^ 



CONTROL Method (cont'd) 



Figure 51 e 



/Start CLOSE Method\ 
I Process J 

,{l922 



1 

Prime Au 
requ 


idit trail (if 
ired) 




,0 


Destroy channel and 
release resources 




r 


Write Audit Trail (if 
required) 



-Write- 



1926 



-Write- 



End CLOSE Method 
Process 



1920 



,[1824 



Audit UDE 



,{l930 



Audit UDE 



7 



CLOSE 
Method 
Process Flow 



Figure 52 




Figure 51 f 



Start of MAP A 
Process J 

Event. Event Count, AE #, Object ID, User 
ID 

£964 

Look up event in MDE 



fl956 



Compare event range 
to AE translation table 
and determine AE # 
and optional count 



Yes 



Calculate AE count 
from event range 



£968 



End of EVENT Map 
Process 



JT958 




End of EVENT Map 
Process 




964 



End of EVENT Map 
Process 



Sample 
EVENT 
Method 
Mapping 
Process 



Figure 53b 



^ EVENT Method Start ^ 

EVENT, Event Count, Event 
Parameters 
+ 



Prime EVENT 
Audit Trail (if 
required) 



1940 




1942 



Write- 



V 



EVENT Method 
Audit Trail UDE 



946 



1948 



Load MAP MDE DTD 



-Read 




EVENT Method Map | 
DTD 



,[l950 



Map Event to Atomic 
Element # and event 
count using Map MDE 



"7 



-Read- 



EVENT Method Map 
MDE 



■snt, Event Count, Atomic Element #, Object ID, User 
ID 

4 



1972 



Write EVENT Audit 
Trail (if required) 



^970 



-Wnte- 



EVENT Method 
Audit Trail UDE 



Atomic Element #, Event 
Count 



[l974 




1976 



EVENT Method failed 



EVENT 
Method 
Process 
Flows 



Figure 53a 



^ACCESS Method Start J 



/ Prime 

/ ACCESS Audit 
V Trail (if 

\ required) 



[2000 



,{2004 




ACCESS Method 
Audit Trail UDE 



2008 



Load ACCESS Method 
MDE DTD 



-Read 




ACCESS Method 
DTD 



2010 



^{2012 



Load encrypted 
content source and 
routing information 



-Read 




ACCESS Method 
MDE 



Location of Content 




,{2016 



Open connection to the 
content service. 



Ye*- 



ACCESS 
Method 
Process Flow 



-Failure 



Obtain encrypted 
content 



2020 



r jioia 




ACCESS Method 
Failed 



Write ACCESS Audit 
Trail (if required) 



,[2022 



-Write - 



,{£026 



^{2024 



r 



ACCESS Method 
Audit Trail UDE 



End of ACCESS 
Method 



Figure 54 



^BILLING Method Startj 



Meter Value 



A. 



Prime BILLING 
Audit Trail (if 
required) 




982 



Write 




1_980 

,Q984 

~1 



BILLING Method 
Audit Trail UDE 



986 



Load MAP MDE DTD 



-Read- 



BILLING Method 
Map DTD 



^{1988 



^989 



Map meter value to 
billing amount using 

Map MDE (and 
possibly database 
elements) 



-Read- 



BILLING Method 
Map MDE (and 
optionally others) 



Billing Amount 
i 



Write BILLING Audit 
Trail (if required) 



{l990 



-Write- 



,0 



992 



BILLING Method 
Audit Trail UDE 




No — *' BILLING Method failed 



Billing amount {1998 
_i / 



BILLING Method 
Succeeded 



BILLING 
Method 
Process 
Flows 



* 

Figure 53c 



Start ENCRYPT 
Method 

Block to Encrypt ,{2052 
i ' 



Determine key to 
use from key block 



,(2054 




Load key from PERC 
or 

Add key to PERC 



-Read/Wnte- 



[2058 



Convolute key (if 
required) 



Encrypt block 



Encrypted block ,£<* 2 
A ' 



End of ENCRYPT 
block 



(2050 



ENCRYPT 

Method 
Process Flow 




( 



Figure 55b 



Start DECRYPT 
Method 



Block to decrypt ,{2032 



Select key number 
from key block 



,[3034 



Load key from PERC 



r 



-Read- 



^[2038 



Convolute key (if 
required) 



,{2040 



Decrypt block 



Decrypted block / [2042 



End of DECRYPT^ 
Method J 



2030 



DECRYPT 

Method 
Process Flow 



"7 



PERC 



* 



Figure 55a 



Start EXTRACT 
Method Process 



(2080 



Object ID, Source container r^ Q82 
ID 

± 



Prime Audit 



4- Read - 



,[2064 



EXTRACT 
Method 
Process Flow 



Audit UDE 



V 



Call BUDGET 
method to check 
extract budget for 

original object 



2098 



r [Io86 




.6 



2090 



Write Failure Audit 


— < 


record 





2092 



End of EXTRACT 
Method 



Yes 



Create copy of 
extracted object 
with specified 
controls (this is a 
call to a method 
that controls the 
copy) 



2094 




,(2104 



User specific new 

or changed 
controls and calls a 
method to create a 
new PERC that 
reflects these 
controls 



106 




,{2100 



Write Audit 




H 


1 




£102 



Audit UDE 



End of EXTRACT 
* Process 



Figure 57a 




Derived - 



Static 



Read content 
information from object 



-Read- 



|2070 



-6 



Securely read 
information from 
container 
(according to 
synopsis algorithm) 
and produce 
synopsis 
1 



2078 



CONTENT 

Method 
Process Flow 



Read 



Object container 




i Release content 
description 



End of CONTENT 
Method 



• 



Figure 56 



Start OBSCURE 
Method 



Call EVENT 
Method to 
determine if 
content is in range 
to be obscured 



2140 



,|5l42 



OBSCURE 

Method 
Process Flow 




.[2156 



End of OBSCURE 
Method 



Figure 58a 



2110 



/start EMBED MethodN 
I Process J 

1 

Object ID. Destination container 

•D [2112 



,(2114 



EMBED 
Method 
Process Flow 



Prime Audit 



4- Write - 



Audit UDE 



Call BUDGET 
method to check 
embed budget for 
destination object 




,(2120 



£122 



Write Failure Audit 


— < 


record 





(End of EMBED Method 



Write object into 
destination 
container, 
abstracting 
controls (calling a 
method to abstract 
or change the 
controls) 




Figure 57b 



<0 




/start FINGERPRINT^ 
I Method J 



,[2162 



Call EVENT 
Method to 

determine if 
content is in range 
to be fingerprinted 



Load fingerprint 
formula and patterms 



4 Read- 



,[2174 



Apply transform 



2160 




,'E? 166 



End of FINGERPRINTS 
Method 



,[2172 



7 



FINGERPRINT 
Method MDE(s) 



FINGERPRINT 
Method Process 
Flow 



No 



,[2176 



'End of FINGERPRINTS 
Method ; 



« 



Figure 58b 



Start of PANIC Method 



y {2202 



Prime Audit 



-Write ► 



2206 



Call CLOSE 
Method to close 
the channel 



2208 



Mark controls as 
damaged 



-Write 



,[2212 



Write Audit 



-Write - 



,{2216 



2200 

,(2204 



Audit UDE 



2210 




URT, PERC(s) 



7 



,{2214 



Audit UDE 



v_ 



PANIC 
Method 
Process Flow 



End of PANIC Method 



« 



Figure 60 



Start of DESTROY \ 
Method J 



,[2182 



Prime Audit 



-Write - 



,(2186 



Call ACCESS 
Method to write 
garbage at head of 
object 



2180 



2184 



Audit UDE 



DESTROY 
Method 
Process Flow 



,[2188 1 



Mark URT or other 
control structures as 
damaged 



-Write- 



,[2192 



Write Audit 



2190 



f 

V 



URT or other 
control structures 



,{2194 



-Write ► 



Audit UDE 



2196 



End of DESTROY 
Method 



Figure 59 



FIG. 62 

KEY CONVOLUTION PROCESS 



2821 



SECRET KEY 
CONVOLUTION SEED v 
VALUE 




2861 



2871 



CURRENT 
CONVOLUTION 
KEY 



•2862 



810 

I ^ 1 






KEY 






1 


T 




ACTUAL 
CONTENT 


CONTENT KEY FROM 
PERC 808 




DES 


OUT 


IN 








KEY 













>d\ 



Start METER Method 
Use Process J 

I 

Atomic Element, Event 
Count 
+ 



(2220 



,[2224 



Prime METER Audit 
Trail 



2222 



-Write 




METER Audit Trail i 
UDE 



,[2226 



2228 



Obtain DTD for 
METER 



4 Read- 



DTD for METER 
UDE 



,{2230 



,{2232 



Obtain METER 



-Read- 



METER UDE 



2236 




-Yes- 



Commit METER 
Failure Audit Record 



2240 



Update METER using 
Atomic Element and 
count 



-Write- 



r 
v 



METER UDE 



2242 



&44 



Save METER Use 
Audit Record 



-Write 




METER Audit Trail ( 
UDE 



METER Method 
Succeeded 



2246 



METER 
Method Use 
Process Flow 



,[2238 



METER Method Failed 



Figure 61 



FIG. 64 SPU KEY INITIALIZATION/INSTALLATION 



LM CERT. PUB KEY(S) 
DOWNLOAD PUB KEY(S) 



y 



2813, 2814 



MFG SITE CERT 
PUB KEY 



-N. 2811 

y- 



MFG SITE CERT 
PRIV KEY 



2812 

3i 



SITE ID AND 
CHARACTERISTICS 



2821 , 2822 



PPE EXTENSION TO 
GEN SITE CERT 
DURING MFG 
(OPTIONAL) 



MFG CERT. GEN 
(PKSIGN) 

2804 



SITE PUB KEY 



2815 



2823 



SITE ID 
CERT 



J 



2816 



SITE PRIV KEY 



SITE DB KEYS 



281 

> 



PPE I SITE PRNG SEED 
§50 V 



2816 



VDE 
CERTIF. 
DB 

2803 



SECURE 
NON-VOLATILE 
KEY 
STORAGE 



2802 



PPE 650 



SECURE NON- 
VOLATILE KEY 
STORAGE 
2802 



PRIV HDR KEY 
2831 



ADMIN OBJECT! 
(CONTROLS) 
870 



SECURE 06 KEY 
2817 



DECRYPT 



PERC 



2843 



STATIONARY 
CONTENT 
OBJECT 
850 



ENCRYPT 



PRIVATE BODY 
KEY FROM 
PERC 810 



2844 



DECRYPT 



2845 



SECURE 
DATABASE 
610 



CONTENT 



• FIG. 66 STATIONARY OBJECT DECRYPTION 



FIG. 65 KEY INSTALLATION & UPDATE 



PRIV HDR KEYS 




2813 



SITE PUBKEy\ ' 

FROM SITE CERT * 
2823 I 



-v 2831 



C 



EXT. COMM KEYS 



2804 



2842, 



PPE650 



2832 

y 



ADMIN OBJ KEYS 



-v 2833 



.2834 



OTHER SHARED KEYS 



5 



2841 



PK ENCRYPT 



SITE PRIV KEY 2816 



PK DECRYPT 



4 



SECURE 
NON-VOLATILE 
KEY 
STORAGE 



2802 



1370 



FIG. 68 

SPU INITIALIZATION 



^ START ^ 



T 

RESET 
SPU 



1372 



ESTABLISH 
SECURE 
COMMUNICATIONS 



1374 



UPDATE 
SPU INTERNAL 
BOOTSTRAP 



1376 



DOWNLOAD 
FIRMWARE 
INTO SPU 



1378 



DOWNLOAD 
UNIQUE DEVICE 
ID INTO SPU 



1380 



DOWNLOAD/IN IT. 
KEYS, TAGS 
AND CERTIFICATES 



1382 



INITIALIZE 
SPU 

REAL TIME CLOCK 



1384 



INITIALIZE 
SUMMARY 
VALUES 



1386 



INITIALIZE 
SECURE 
DATABASE 



H1388 



PPE650 r 




CONTENT 



FIG. 67 TRAVELING OBJECT DECRYPTION 



2630 

\ 



654(1) 



653(1) 



600(1) 



1 



CPU 



2632(1) 



ROM 



658(1)^/ 



656(1 



RAM 
^ 



i 



500(1) 
654(2) 



SPU 
7 



V INTER- 
SPACE/ 
CTRL 



2634(1) 



CONN 



600(2) 



620 



,— — J====== .- — , 

XL 



2636 
653(2) 



r 



A 



STORAGE 
MECHANISM 



jj CONTROLLER 



2632(2) 

f 



ROM 



658(2) 



II BUS 



RAM 



656(2)3/ 



SPU 



500(2) J 



INTER- 
FACE/ 
CTRL 



CONN. 



2631 
(672) 



614 



600(3) 



2638 
653(3) 



DISPLAY 
MECHANISM 



654(3) 



A / 



^CONTROLLER 



2632(3) 

i 



ROM 

658(3) J 



BUS 



RAM 

656(3)^ 



SPU 
500(3)7 



2634(3) 



INTER- 
FACE/ 
CTRL 



CONN 



600(N) 



622 



I) — >^ • 654(N) 2632(N) 



2640 

653(N) 
i 



PRINT 




jj CONTROLLER 


MECHANISM 





ROM 
658(N^ 



IE 



RAM 
656(H)J 



BUS 




FIG. 70 



1390 



1392 




1394 



1396 



1398 





FIG. 69 

SPU FIRMWARE 
DOWNLOAD 



LOG IN USER INTERFACE 



182 



USER NAME: 
PASSWORD: 



SHEAR, V. 



★ * * * * 



□ 



LOGIN AT STARTUP 



LOGIN 



CANCEL 



HELP 



FIG. 72A 



FIG. 72B 



2660 



A 



YOU HAVE REQUESTED THESE 
PROPERTIES: 



CANCEL 



LOONEY TUNES NEWS! 



APPROVE 



PROPERTY INFO 



2662 



SUSPEND 



Your Cost: $7.50 MORE OPTIONS 



3 



2664 




G 

CN 

O 

LL 



(0 

c 
E 

3 



! 

JC 

co 




(A 
C 

o 

a 
O 

£ 
o 
S 



o 
>• 



<] 



o 
to 



c/> 
o 
o 

tr 

O 



o 

u. 
z 

i 

Ui 

a. 
O 
a: 



llll 



•••••••• 



41 4 ■« 



§ >- 

LU < 

a. o 



m o 
cn o 

w 



Q 

£ O 
* a: 



to «- 



< ^ 

a a 

LU UJ 

UJ UJ 

z z 

£ OS 

LU LU 

* 1 
1 1 



CD 

CM r- 



8 5 
O ui 

5 & 



co 

LU 

z 
o 

— > 

a 

3 
X 

a 



z 
z 

CD 
CO 

a 

CD 



5 § 



CL 

CO _ 
Q Q 



o 

CO 
W 



Q 
O 

a 

LU 



< 
a 

LU 

LU 
Z 

£ 

LU 
Z 

□I 

l 



a. 



o 
in 

cn 
w 



Q 

o 
a 

LU 

or 



£ cm 



< 

Q 
LU 

LU 

z 

a: 

LU 

z 
or 



CD CD 

2 2 



4 4 



o 

Q. _j 

H > >- < 
Z 0-0- 

S Q o 

CL 



o 
o 

tri 

W 



z 

OS 

< 



CO 

a a ^ 



o 
in 



8 



in 

CN 

in 



o 
a 

o 

§ 



www 



CM CM 



0C Z 

O LU 

i— a 

a cc 

LU LU 

co a 



LU 

3 
Z 

2 



a 

o uj 

LU =» 

a. m 
co o 



° <-» o 

V- ^> N- 



< < i 

Q Q Q 

LU LU LU 



< 



5 



5 
LU 
Z 
0£ 

LU LU 



5 $ 

LU LU 

z z 

LU 



Z 

cr 

i 



or 

i 



LU UJ 

LU UJ 

z £ 

i 1 



CO 


CD 


CD 


CO 


CO 


X. 








CD 


(0 




CO 


o 


in 


in 




m 


o 


CM 


CN 


CO 


CN 


to 



EG.. 


EG.. 


O 

g 


iGRAF 


CL 


0. 




-J 




LENG 


*Y BIO 


ANN 


NNY. 


3 


3 


LU 


LU 


CD 


CD 


or 


CO 


CO 


LL 


$ 


o 


o 


NI 


X 


3 


3 


a: 


LU 


CD 


CO 


U- 


1- 



3 
O 

P 9 

S 

co 

o 



X 
CL 

o 
g 

CD 

a 
z 

CO 
-J 
LU 

2 



00 

§ 

CO 

1 

>- 

LU 

o 
o 



co 

LU 

a 
z 

LU 

or 

LU 
LL 
LU 

or 
a. 



or 

LU 
LL 

co 
z 



H 
LU 

CD 

a 

3 
CD 

LU 

or 

3 

a 

a 
< 



CO 

t- 

LU 
O 
Q 
3 
CD 

i 

X 

CO 



CO 

2 



LU 
CO 



FIG. 72C 



2666 



SET LIMITS: 

SESSION DOLLAR LIMIT: $ 

TRANSACTION DOLLAR LIMIT: $ 

TIME LIMIT (IN MINUTES): 



50 



■2668 



2672 



2674 



OK 



CANCEL 




FIG. 74 





30N 



VDE SITE WITH AGENT 
EXECUTION SERVICE AND 
SOFTWARE DESCRIPTION 
LIST DATABASE 



3020 



VDE SITE WITH AGENT 
EXECUTION SERVICE AND 
SOFTWARE DESCRIPTION 
LIST DATABASE 



O ry Ui 

o q 5 

£ -J Q 



VDE SITE WITH 
INFORMATION LOCATOR 
SERVICE 

! 



SMART OBJECT 
SEND TO SECOND VDE 
SITE AFTER FAILURE ON 
FIRST VDE SITE 



__3018 



SMART OBJECT 
SENT TO VDE SITE 
DESIRED SERVICES 



3022 



SMART OBJECT 
WITH DESIRED 
INFORMATION 
RETURNS TO 
SENDER 



3024 



3012 



SMART OFJECT SENT TO DETERMINE 
LOCATION OF DATABASE TO USE 



1014 




3010 



300. 



806a 



806b 



806d 



806e 



300z. 



300y , 



300x 



300w 



FIG. 73 



PUBLIC HEADER 



/ 



3000 



PRIVATE HEADER 



PRIVATE BODY 



RULES 
FOR 
CONTAINER 300 



RULES 
FOR 
CONTAINER 
300x 



RULES 

FOR 
RIGHTS 
NEGOTIATION 



RULES 
FOR 

CONTAINER 300y 



RULES 
FOR 

CONTAINER 300wl 



CONTENT 
OBJECT 



SOFTWARE AGENT 



RULES 
FOR 

CONTAINER 300z I 



RULES 

FOR 
AGENT 
EXECUTION 



CONTENT 
OBJECT 



RULES 
FOR 
INFORMATION - 
SEARCH 



INFORMATION (ROUTING) 
LOCATIONS AND RELATED DATA 



CONTENT 
OBJECT 



RULES 
FOR 
INFORMATION 
RETRIEVED 



INFORMATION RETRIEVED 



ADMIN. 
OBJECT 



AUDIT HISTORY OF 
AGENT 
EXECUTION 



RULES 
FOR 
AUDIT 
RETURNED 



802 



804 
806 



806c 



806f 



300z(1) 

300z(2) 
300y(1) 

300y(2) 

300x(1) 

300x(2) 
300 w(1) 

J00w(2) 



FIG. 75B 



PERC HEADER 



CSO 



3125 

/ 



PRIVATE 
BODY KEYS 



USE RIGHT HDR 



CSR 



KEYS 



CSR 



[METHOD OPTION: 
VISA 



DESIRED METHOD, BUDGET 

DESIRED UDE: 

MYVISABUDGET 



REQUIRED METHOD, BILLING (<$150 FIXED, ONE TIME) 





DESIRED CONTROL SET 
(USE WITH INFO. PASSBACK) 


CONTROL METHOD (VENDING 
WITH "RESPONSE CARD") - 



REQUIRED METHOD, AUDIT 

(COLLECTION PERSONAL INFORMATION) /• 


PERMITTED 
FIELDS 





REQUIRED METHOD, BILLING {<$30, FIXED, ONE TIME) 



PERMITTED CONTROL SET 
(USE W/O INFO PASSBACK) 



CONTROL METHOD (VENDING) - 



3129 



3143 



3133 



-3135 



.3139 



-3141 



FIG. 75A 



3108, 



3110__ 



3112, 



3114v 
3116 

3116 



3104 



3106 



PERC HEADER 



USE RIGHT HDR 



cso 



CSR 



PRIVATE 
BODY KEYS 



KEYS 



PERMITTED CONTROL SET 
(USE W/O INFO. PASSBACK) 



CONTROL METHOD (VENDING) 



REQUIRED METHOD, BUDGET 


METHOD OPTION: 
VISA 


METHOD OPTION: 
MASTERCARD 


METHOD OPTION: 
AMEX 



REQUIRED METHOD, BILLING ($100 FIXED, ONE TIME) 





DESIRED CONTROL SET 
(USE WITH INFO. PASSBACK) 


CONTROL METHOD (VENDING 
WITH "RESPONSE CARD") 



REQUIRED METHOD, BUDGET 


METHOD OPTION: 
VISA 


MtTHOD OPTION: 
MASTERCARD 


METHOD OPTION: 
AMEX 


REQUIRED METHOD, AUDIT (COLLECTION 
PERSONAL INFORMATION) 


REQUIRED 
v FIELDS 


DESIRED FIELDS 





REQUIRED METHOD, BILLING ($25 FIXED, ONE TIME) 



3100 

/ 



* 



FIG. 75D 



3162- 
3164 



3168 



3170 



URT HEADER 



USE 
RIGHT HDR 



CSO 



DIGITAL 
SIGNATURE 



3160 



CSR 



CONTROL sET(USE WITH 
INFO. PASSBACK) 



CONTROL METHOD(VENDING 
WITH "RESPONSE CARD") 



REQUIRED METHOD, BUDGET 


METHOD OPTION: 
VISA 


DESIRED UDE: 
MYVISABUDGET 





REQUIRED METHOD, AUDIT (COLLECTION 
PERSONAL INFORMATION) 


PERMITTED 
FIELDS 





REQUIRED METHOD, BILLING($25, FIXED, ONE TIME) 



( 



4 



FIG. 75C 



PERC HEADER 



3152, 
3154a, 

3157a ^ 



3154b 



NEGOTIATE 
RIGHT HDR 



CSO 



CSR 



3150 

-i 



PRIVATE 
BODY KEYS 



KEYS 



PERMITTED CONTROL SET 
(TRUSTED NEGOTIATOR) 



CONTROL MfclHOU 
(NEGOTIATE) 



REQUIRED UDE 


REQUIRED UDE: 


PERC1 


PERC2 



PERMITTED CONTROL SET 
(MULTIPLE NEGOT. PROCESSES) 



CONTROL METHOD (NEGOTIATE) 



REQUIRED METHOD: NEGOT1ATE1 


REQUIRED UUt: 
PERC1 





REQUIRED METHOD: NEGOTIATE2 


REQUIRED UDE: 
PERC 2 





3156 

J 

3157b 



3158 
3156 



-3158 



• 



FIG. 76A 



PERC 1 



7s 

/ 808a 



RULES SET 1 



ELECTRONIC 



PERC 



ili / 808n 



RULES SET N 




CONTRACT 1 ELECTRONIC 



CONTRACT 2 



NEGOTIATION 
PROCESS RULES 
AND CONTROLS 

I 

3150 J 



PERC/URT 1 



PERC/URT N 



3160a. 



3160n. 



3202(1) 



3202(2) 




3202(N). 



CLAUSE N 



DIGITAL 
SIGNTURE 



3204(1) 



DIGITAL 
SIGNATURE 



ELECTRONIC 
CONTRACT 



FIG. 75E 



3200 



3204{M) 



7 



3206 



3208(1) 



3208(2) > 



3208(3) 



3208(4) 



STEP 1 



STEP 2 



FIG. 75F 




3208(5) 



FIG. 77 



VDE CONTENT 
CREATOR 



102 




VDE RIGHT/ 
DISTRIBUTOR 




106 



110. 



CLIENT 
ADMINISTRATOR 




II 112(2) 11 2(") 
^' *L 



VDE 
USER 
N 



104 





116a 



116b- 



1 




FINANCIAL 
CLEARINGHOUSE 



VDE 

ADMINISTRATOR 



BILLS 



FIG. 76B 




FIG. 79 



Q 
M 

m 
w 
a 

Q 
£3 



CREATOR A 



CREATOR B 



DISTRIBUTOR A 



USER A 




USER/ 

DISTRIBUTOR A 



USER/ 

DISTRIBUTOR B 



CREATOR C 




DISTRIBUTOR B 



CREATOR 
E 



CLIENT 

ADMINISTRATOR 



USERC 



USERB 




USER/ 

DISTRIBUTOR 
C 



USER E 



L* USERD 



CD 
CM 

o 
co 
r> 

5 

ID 



> 

o 

t 
CO 

O 

0. 
Ill 

ft 

UJ 

a 
> 










CO 




to 




> 










P 




O »- 




O CO -1 









H O 




23 






cs 




<o 

CO 


O < 




o a 





5 






m 






i- 


00 


CM 


H CO 


in 


m 


u. > 


co 


CO 


Ui CO 


CO 


CO 



s 

< >co 
O O coco 



-J 




< 




o 




z 




1- CO 


< 


CO CO 


z 

u. 


AS 



111 

2 (0 co 
O >• ro 
O CO 



H 
2 
Ui 



O 
o 





FIG. 80 



CREATOR A 



O 
^0 

m 

W 
a 

rj 

Q 
I- 

0 



USER A 
U A (D A (C A )) 



DISTRIBUTOR A 
D A (C A ) 



USER B 
U 8 (D A (C A )) 




USER/DISTRIBUTOR A 
UD A (D A (C A )) 




i 


USER/DISTRIBUTOR B 
UD B (UD A (D A (C A ))) 




i 



USER B 

U 9 (UD 9 (UD A (D A (C A )))) 



FIG. 83 



CREATOR B 
C. 



USER B 
U B (D C (C B C C C D )) 



USER B 
U.(D,(D c (C 6 C c C 0 )C e )) 



CREATOR 0 

C„ 



DISTRIBUTOR C 
D c (C B C c C e ) 



DISTRIBUTOR B 
D S {D C (C 8 C C C 0 )C E ) 



CLIENT ADMINISTRATOR 
CA(D B (D c (C 8 C c C 0 )C e )) 



USER C 
U c (CA(D.(D c (C B C c C D )C e ))) 



CREATOR C 



CREATOR E 



USERE 

U E (D 8 (D C (C B C C C D )C E )) 



USER/DISTRIBUTOR C 
UD c (CA(D B (D c (C 8 C c C 0 )C g ))) 



USER D 
u 0 (CA(D.(D c (C,C c C 0 )C e ))) 



USER E 
U e (CA(D,(D c (C,C c C 0 )C E ))) 



USERD 

UotUOctCAtD.tD^C.CcCoJCe)))) 



FIG. 85 



DISPLAY 



EDIT 
EXTRACT 



DISTRIBUTE 



BUDGET = 
$22,000 
PRINT — 



.300(A) 




DISPLAY 



PRINT 
DISTRIBUTE 



BUDGET = 
$8,000 



.300(B) 



3452(1) 
SALES & MARK 



3450 



CLIENT ADMINISTRATOR 



TOT 
ADMINISTRATOR 



A 



DISPLAY 



BUDGET = 
- $2,000 - - 
DISTRIBUTE 



a; - 



DISPLAY 
PRINT 



BUDGET ■ 
$3,000 



distribute 



3454(1) 

J- 



USER 1 



DISPLAY 



BUDGET ■ 
$200 



•34S4(Jh 



3452(2) 



PLANNING . 
ADMINISTRATOR 




CI A 






DISPLAY 






EDIT 






BUDGET = 
$10,000 






DISTRIBUTE 







3452(K) 

± 



RESEARCH & DEVELOPMENT 
ADMINISTRATOR 



DISPLAY 
EXTRACT 



BUDGET = 
$10,000 
PRINT 



DISTRIBUTE 



DISPLAY 
BUDGET = 
$5,000 



DISTRIBUTE 




fBUDGET = 
$100 



USER 5 



DISPLAY 

EDIT 
BUDGET 
=$1000 



DISPLAY 



BUDGET 
=$1000 



USER 3 



B 



DISPLAY 



BUDGET > 
$400 " 



USER 4" 



3454(4) 



USERN 



3454(N) 

1 



DISPLAY 



PRINT 

BUDGET 
=$500 



DISPLAY 



BUDGET 
-$100 



3454(5) 



DISPLAY 



BUDGET' 
$100 




DISPLAY 



EXTRACT 
BUDGET * 
$1000 



3454(6) 



